Scott, You can test squid a number of different ways. Point your client's web browser (after it has been configured to use the proxy) to a web page. Then, on the proxy, watch access_log (usually /usr/local/squid/var/logs/access_log ). You should see the traffic in that log. If that doesn't work, telnet to port 3128 of the proxy server from the client. If it connects, you should be able to issue HTTP commands like: GET http://www.w3.org HTTP/1.0 and get a response. If that doesn't work, you can try squidclient on the proxy server. That binary is in /usr/local/squid/bin on your proxy server. cd /usr/local/squid/bin ./squidclient http://www.w3.org and you should get back a bunch of html. If that doesn't work, then your squid server is not connected to the Internet correctly. Also, check your error_log in /usr/local/squid/var/logs Check those things and let us all know how it works out. Grant

-----Original Message----- From: Scott Wrobel [mailto:saw424@xeomail.com] Sent: Wednesday, March 10, 2004 7:46 PM To: suse-security@suse.com Cc: suse-slstd-e@suse.com Subject: [suse-security] windows to squid to internet

I am trying to set up two windows boxes to connect to the internet throught my linux box using squid. I have made my own squid.conf file as shown below. I have gone into the windows computers (2000 pro (192.168.1.27) and 98 (192.168.1.25)) and told them both to use the proxy server over a network, address: localhost and port: 3128, however i am getting no results. The windows computers are manually configured to be in the same workgroup, gateway, netmask, and have the same first 3 segments of the ip addres as the server and can ping the server. Samba is running and is working. DHCP is giving me problems now that i have finally gotten it working. The modem in the linex box does connect to the internet. Any help / opinions / reasons why this is not related to a security mailing list ;) / etc. will be accepted warmly.

http_access allow src 192.168.1.25 http_access allow src 192.168.1.27 http_access allow all acl all src 0.0.0.0/0.0.0.0 acl manager proto cache_object acl localhost src 192.168.1.25/255.255.255.0 acl localhost src 192.168.1.27/255.255.255.0 acl to_localhost dst 127.0.0.0/8 acl SSL_ports port 443 563 acl Safe_ports port 80 # http acl Safe_ports port 21 # ftp acl Safe_ports port 443 563 # https, snews acl Safe_ports port 70 # gopher acl Safe_ports port 210 # wais acl Safe_ports port 1025-65535 # unregistered ports acl Safe_ports port 280 # http-mgmt acl Safe_ports port 488 # gss-http acl Safe_ports port 591 # filemaker acl Safe_ports port 777 # multiling http acl CONNECT method CONNECT

FadMart - http://www.fadmart.com - An Associate of the World's Largest Store!

-- Check the headers for your unsubscription address For additional commands, e-mail: suse-security-help@suse.com Security-related bug reports go to security@suse.de, not here

This electronic message transmission is a PRIVATE communication which contains information which may be confidential or privileged. The information is intended to be for the use of the individual or entity named above. If you are not the intended recipient, please be aware that any disclosure, copying, distribution or use of the contents of this information is prohibited. Please notify the sender of the delivery error by replying to this message, or notify us by telephone (877-633-2436, ext. 0), and then delete it from your system.